I just started at a security company and I'm looking to find out if it's better to have a federated identity system (OpenID) instead of a public key encryption. Can anybody explain the benefits of having a federated identity management system? I would appreciate any advice.

I'm trying to create an identifier for forgot password. I've tried using a timestamp with mt_rand() but the timestamp isn't unique every time. Is there something I'm missing here? What's the best way to generate random tokens of custom length? Thank you.

I'm sorry for the 'homework-type question' but does shared key and pre-shared key mean the same thing in terms of authentication? Does pre-shared mean that it's already been shared by different parties? Thank you for the help.

I've started working with Java applications and I'm trying to implement a single sign-on and federation in my application. Basically, I want to implement claims aware application in Java. What's the best way to do that?

I am having problems trying to access the internet on a PC running vista that is also used s an AS/400 terminal. Supposedly the IT guy at work says it can't be done and we will have to wipe vista off and install XP instead. the AS/400 is tied in to the LAN port and I am trying to access internet...

There is no source control/versioning at the company I just started working for. I've worked with CVS before, but does anyone have any suggestions of better applications for this purpose? My company works primarily in web development on several different systems/development frameworks.

Over the past few weeks, I've been trying to make a one-time password generator for a phone. In the RFC2289, it says I must fold the output of the MD5. I've been using bouncy castle MD5 and I'm having issues on how to fold the byte array output. Here's what I have so far: for (int i = 0; i < 8;...

I'm looking to authenticate several users from a client application using ASP.NET Web API. I understand that the "Authorize" attribute correctly returns a 401 unauthorized status. But I need to know how to allow our users to login to the API. Thanks so much!

To follow this tag...

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States.
Privacy